This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/U56TnthDRWDIW4gL93EyrEAgwAI.roa File: U56TnthDRWDIW4gL93EyrEAgwAI.roa (raw, json) Hash identifier: tOCfDzaHMm1ONV/c7UPDq6X22FPcYs62vU3FGgv74iI= Subject key identifier: 53:9E:93:9E:D8:43:45:60:C8:5B:88:0B:F7:71:32:AC:40:20:C0:02 Certificate issuer: /CN=1d829b5e606dc83c51711df9c223d81d811ef798 Certificate serial: 019BFC0A460E0124350C90113FC597EB1CE3 Authority key identifier: 1D:82:9B:5E:60:6D:C8:3C:51:71:1D:F9:C2:23:D8:1D:81:1E:F7:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYKbXmBtyDxRcR35wiPYHYEe95g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/U56TnthDRWDIW4gL93EyrEAgwAI.roa Signing time: Mon 26 Jan 2026 20:41:30 +0000 ROA not before: Mon 26 Jan 2026 20:41:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204826 IP address blocks: 185.165.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/HYKbXmBtyDxRcR35wiPYHYEe95g.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/HYKbXmBtyDxRcR35wiPYHYEe95g.mft rsync://rpki.ripe.net/repository/DEFAULT/HYKbXmBtyDxRcR35wiPYHYEe95g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:0a:46:0e:01:24:35:0c:90:11:3f:c5:97:eb:1c:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d829b5e606dc83c51711df9c223d81d811ef798 Validity Not Before: Jan 26 20:41:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=539e939ed8434560c85b880bf77132ac4020c002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9f:29:a5:d5:e1:50:87:52:10:c4:d0:77:a9: 88:7b:5b:d6:a2:72:33:62:c0:7f:f5:b4:6c:98:e7: 1e:e1:4a:f1:f4:85:b1:11:18:2a:12:17:18:12:02: 3e:0e:0d:87:a4:65:36:27:95:76:1d:8c:03:04:e9: 3a:8e:aa:6a:a8:8b:ab:f4:ea:3a:72:30:27:37:42: bb:57:65:eb:3c:4e:8c:86:b7:55:56:8f:e0:ba:c0: 3a:aa:c7:6b:b7:c7:58:9f:3e:8e:36:6d:75:62:dd: c5:56:e4:28:e2:97:9b:2a:ad:88:ea:d7:9f:92:66: b1:f3:cd:34:06:24:9a:99:63:81:c0:41:5b:8c:cf: a8:f4:86:f0:87:d1:6c:ac:fa:88:ab:58:4a:11:75: a7:2e:d1:34:a1:b4:9f:c1:7b:50:ba:9b:00:79:00: 22:41:ae:6e:ff:79:6f:92:1d:01:d7:c5:1d:c1:cb: 11:cd:6f:e5:78:41:c2:c8:3c:bc:05:ce:a8:0d:2e: 83:42:d7:94:66:e3:db:df:b2:ba:9b:80:85:5b:5b: ea:39:48:c7:2c:0a:5c:ee:c8:bc:a9:39:7e:93:c4: db:aa:28:79:d5:37:91:d2:63:16:11:de:38:eb:20: e4:c5:29:cb:44:86:50:08:10:d4:bc:4c:73:b8:6c: 2d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9E:93:9E:D8:43:45:60:C8:5B:88:0B:F7:71:32:AC:40:20:C0:02 X509v3 Authority Key Identifier: keyid:1D:82:9B:5E:60:6D:C8:3C:51:71:1D:F9:C2:23:D8:1D:81:1E:F7:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYKbXmBtyDxRcR35wiPYHYEe95g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/U56TnthDRWDIW4gL93EyrEAgwAI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7f9fc3-601c-404e-ad41-6da85931160f/1/HYKbXmBtyDxRcR35wiPYHYEe95g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.165.93.0/24 Signature Algorithm: sha256WithRSAEncryption 63:30:ce:ac:82:96:c0:93:96:0f:2b:59:4e:a8:70:7d:57:9a: 6c:e3:26:c5:3c:63:83:96:2a:18:52:9c:52:84:28:aa:15:2b: 8f:3a:9c:7a:fe:40:8e:8e:6d:71:50:f1:19:ee:12:2f:4c:77: ad:3e:12:d1:05:9e:88:1c:e4:53:84:bf:84:2a:ee:0c:c8:09: 68:55:b9:fb:24:74:3f:57:8c:cb:c2:15:c9:5d:a1:61:82:e8: bb:4e:6b:11:3d:4b:64:95:40:fb:62:75:9b:18:4b:4c:fc:74: 51:6f:7f:1a:4d:2f:5c:85:30:33:9a:92:96:09:36:71:78:15: 86:37:78:44:07:da:23:f9:a3:68:55:e1:ce:7a:e7:1c:55:ae: 34:0b:8b:40:4d:9f:82:09:a5:9e:28:14:f4:4b:63:e9:1a:cf: 67:fc:d8:a9:42:b2:40:ac:bc:a4:ed:bd:44:9e:bc:f2:3f:33: 21:03:a0:3f:e5:c5:3a:20:fd:8f:02:af:83:7c:b7:53:ed:94: 2e:5d:06:db:b4:53:32:21:dd:1d:41:72:f3:ae:72:06:09:02: 3f:3d:81:ab:78:cc:2e:d2:d2:05:8b:64:2f:e0:db:95:fa:ea: 3b:00:22:5b:e0:ac:7b:b4:aa:90:fd:b1:3e:08:36:f2:79:45: 3c:9e:9c:2e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZv8CkYOASQ1DJARP8WX6xzjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODI5YjVlNjA2ZGM4M2M1MTcxMWRmOWMyMjNkODFkODEx ZWY3OTgwHhcNMjYwMTI2MjA0MTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MzllOTM5ZWQ4NDM0NTYwYzg1Yjg4MGJmNzcxMzJhYzQwMjBjMDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7J8ppdXhUIdSEMTQd6mIe1vWonIz YsB/9bRsmOce4Urx9IWxERgqEhcYEgI+Dg2HpGU2J5V2HYwDBOk6jqpqqIur9Oo6 cjAnN0K7V2XrPE6MhrdVVo/gusA6qsdrt8dYnz6ONm11Yt3FVuQo4pebKq2I6tef kmax8800BiSamWOBwEFbjM+o9Ibwh9FsrPqIq1hKEXWnLtE0obSfwXtQupsAeQAi Qa5u/3lvkh0B18UdwcsRzW/leEHCyDy8Bc6oDS6DQteUZuPb37K6m4CFW1vqOUjH LApc7si8qTl+k8Tbqih51TeR0mMWEd446yDkxSnLRIZQCBDUvExzuGwtyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFOek57YQ0VgyFuIC/dxMqxAIMACMB8GA1UdIwQY MBaAFB2Cm15gbcg8UXEd+cIj2B2BHveYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlLYlhtQnR5RHhSY1IzNXdpUFlIWUVlOTVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83ZjlmYzMtNjAxYy00MDRlLWFkNDEt NmRhODU5MzExNjBmLzEvVTU2VG50aERSV0RJVzRnTDkzRXlyRUFnd0FJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC83ZjlmYzMtNjAxYy00MDRlLWFkNDEtNmRhODU5MzExNjBm LzEvSFlLYlhtQnR5RHhSY1IzNXdpUFlIWUVlOTVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaVdMA0G CSqGSIb3DQEBCwUAA4IBAQBjMM6sgpbAk5YPK1lOqHB9V5ps4ybFPGODlioYUpxS hCiqFSuPOpx6/kCOjm1xUPEZ7hIvTHetPhLRBZ6IHORThL+EKu4MyAloVbn7JHQ/ V4zLwhXJXaFhgui7TmsRPUtklUD7YnWbGEtM/HRRb38aTS9chTAzmpKWCTZxeBWG N3hEB9oj+aNoVeHOeuccVa40C4tATZ+CCaWeKBT0S2PpGs9n/NipQrJArLyk7b1E nrzyPzMhA6A/5cU6IP2PAq+DfLdT7ZQuXQbbtFMyId0dQXLzrnIGCQI/PYGreMwu 0tIFi2Qv4NuV+uo7ACJb4Kx7tKqQ/bE+CDbyeUU8npwu -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:10 2026 by rpki-client